Securing UNIX systems training course description This course teaches you everything you need to know to build a safe Linux environment. The first section handles cryptography and authentication with certificates, openssl, mod_ssl, DNSSEC and filesystem encryption. Then Host security and hardening is covered with intrusion detection, and also user management and authentication. Filesystem Access control is then covered. Finally network security is covered with network hardening, packet filtering and VPNs. What will you learn Secure UNIX accounts. Secure UNIX file systems. Secure UNIX access through the network. Securing UNIX systems course details Who will benefit: Linux technical staff needing to secure their systems. Prerequisites: Linux system administration (LPIC-1) Duration 5 days Securing UNIX systems course contents Cryptography Certificates and Public Key Infrastructures X.509 certificates, lifecycle, fields and certificate extensions. Trust chains and PKI. openssl. Public and private keys. Certification authority. Manage server and client certificates. Revoke certificates and CAs. Encryption, signing and authentication SSL, TLS, protocol versions. Transport layer security threats, e.g. MITM. Apache HTTPD with mod_ssl for HTTPS service, including SNI and HSTS. HTTPD with mod_ssl to authenticate users using certificates. HTTPD with mod_ssl to provide OCSP stapling. Use OpenSSL for SSL/TLS client and server tests. Encrypted File Systems Block device and file system encryption. dm-crypt with LUKS to encrypt block devices. eCryptfs to encrypt file systems, including home directories and, PAM integration, plain dm-crypt and EncFS. DNS and cryptography DNSSEC and DANE. BIND as an authoritative name server serving DNSSEC secured zones. BIND as an recursive name server that performs DNSSEC validation, KSK, ZSK, Key Tag, Key generation, key storage, key management and key rollover, Maintenance and resigning of zones, Use DANE. TSIG. Host Security Host Hardening BIOS and boot loader (GRUB 2) security. Disable useless software and services, sysctl for security related kernel configuration, particularly ASLR, Exec-Shield and IP / ICMP configuration, Exec-Shield and IP / ICMP configuration, Limit resource usage. Work with chroot environments, Security advantages of virtualization. Host Intrusion Detection The Linux Audit system, chkrootkit, rkhunter, including updates, Linux Malware Detect, Automate host scans using cron, AIDE, including rule management, OpenSCAP. User Management and Authentication NSS and PAM, Enforce password policies. Lock accounts automatically after failed login attempts, SSSD, Configure NSS and PAM for use with SSSD, SSSD authentication against Active Directory, IPA, LDAP, Kerberos and local domains, Kerberos and local domains, Kerberos tickets. FreeIPA Installation and Samba Integration FreeIPA, architecture and components. Install and manage a FreeIPA server and domain, Active Directory replication and Kerberos cross-realm trusts, sudo, autofs, SSH and SELinux integration in FreeIPA. Access Control Discretionary Access Control File ownership and permissions, SUID, SGID. Access control lists, extended attributes and attribute classes. Mandatory Access Control TE, RBAC, MAC, DAC. SELinux, AppArmor and Smack. etwork File Systems NFSv4 security issues and improvements, NFSv4 server and clients, NFSv4 authentication mechanisms (LIPKEY, SPKM, Kerberos), NFSv4 pseudo file system, NFSv4 ACLs. CIFS clients, CIFS Unix Extensions, CIFS security modes (NTLM, Kerberos), mapping and handling of CIFS ACLs and SIDs in a Linux system. Network Security Network Hardening FreeRADIUS, nmap, scan methods. Wireshark, filters and statistics. Rogue router advertisements and DHCP messages. Network Intrusion Detection ntop, Cacti, bandwidth usage monitoring, Snort, rule management, OpenVAS, NASL. Packet Filtering Firewall architectures, DMZ, netfilter, iptables and ip6tables, standard modules, tests and targets. IPv4 and IPv6 packet filtering. Connection tracking, NAT. IP sets and netfilter rules, nftables and nft. ebtables. conntrackd Virtual Private Networks OpenVPN server and clients for both bridged and routed VPN networks. IPsec server and clients for routed VPN networks using IPsec-Tools / racoon. L2TP.
Overview In this competitive era no matter how much hard work and solid efforts are contributed still, too many projects end up creating unneeded and unsellable products. There is a significant risk that the outcome of the project may not be relevant to the client/user requirements or become outdated when needs change. Here is where Design Thinking and Agile Management play their role. The combination of Agile and Design Thinking should be used in order to achieve impactful outcomes. Agile and design thinking together works well and gives an effective approach to product development, one that results in efficient resolutions to significant problems. In this course, you'll learn how to define and determine what's important to a user primary in the process, to frontload value, by directing your team on testable narratives about the user and generating an effectively shared perspective. For more dates and Venue, Please email sales@gbacorporate.co.uk
This interactive programme will use the topic of equity, diversity, and inclusion to illustrate the problem of unconscious bias and the practical solutions to overcome it. The programme will provide the opportunity for self-reflection, open discussion, and training on some of the softer skills to maximise objectivity in the workplace.
A dynamic and interactive one-day or two-half-day live virtual workshop for women leaders in business, government and non-profit organizations.
Emotional Intelligence Training
Effecting Business Process Improvement: In-House Training Business analysts facilitate the solution of business problems. The solutions are put into practice as changes to the way people perform in their organizations and the tools they use. The business analyst is a change agent who must understand the basic principles of quality management. This course covers the key role that business analysts play in organizational change management. What you will Learn You will learn how to: Define and document a business process Work with various business modeling techniques Perform an enterprise analysis in preparation for determining requirements Analyze business processes to discern problems Foundation Concepts Overview of business analysis and process improvement Defining the business process Introducing the proactive business analyst Focusing on business process improvement for business analysts Launching a Successful Business Process Improvement Project Overview of the launch phase Understanding and creating organizational strategy Selecting the target process Aligning the business process improvement project's goals and objectives with organizational strategy Defining the Current Process Overview of current process phase Documenting the business process Business modeling options: work-flow models Business modeling options: Unified Modeling Language (UML) model adaptations for business processes Analyzing the Current Process Process analysis overview Evaluation: establishing the control group Opportunity techniques: multi-discipline problem-solving Opportunity techniques: matrices Building and Sustaining a Recommended Process Overview of the recommended process and beyond Impact analysis Recommended process Transition to the business case Return to proactive state
Gold CSCS Card NVQ Level 3 Advanced craft This is the NVQ that provides those with the relevant experience to showcase their knowledge, skills and understanding in advanced craft. You will be required to provide evidence of more technical projects. The award requires you to support a team through setting constantly high standards. You will work in one of the following areas: Trowel Occupations (Bricklayer) Painting and Decorating Wall and Floor Tiling Site Carpentry Plastering Roofing Induction - As soon as you register you will be given a dedicated assessor. They will arrange an induction and together with your assessor, you will get to decide on the pathway which best proves your competency. The induction is used to plan out how you will gather the relevant evidence to complete the course. During the course - The assessor will work with you to build a portfolio of evidence that allows you to showcase your knowledge, skills and experience. The assessor will also regularly review and provide you with feedback. This will allow you to keep on track to progress quickly. You will be assessed through various methods such as observations, written questions, evidence generated from the workplace, professional discussion, and witness testimonials. On completion - Once all feedback has been agreed, the Internal Quality Assurer will review your portfolio and in agreement with your assessor the certificate will be applied for. To download our PDF for this course then please click here.
Gold CSCS Card NVQ Level 3 Advanced craft This is the NVQ that provides those with the relevant experience to showcase their knowledge, skills and understanding in advanced craft. You will be required to provide evidence of more technical projects. The award requires you to support a team through setting constantly high standards. You will work in one of the following areas: Trowel Occupations (Bricklayer) Painting and Decorating Wall and Floor Tiling Site Carpentry Plastering Roofing Induction - As soon as you register you will be given a dedicated assessor. They will arrange an induction and together with your assessor, you will get to decide on the pathway which best proves your competency. The induction is used to plan out how you will gather the relevant evidence to complete the course. During the course - The assessor will work with you to build a portfolio of evidence that allows you to showcase your knowledge, skills and experience. The assessor will also regularly review and provide you with feedback. This will allow you to keep on track to progress quickly. You will be assessed through various methods such as observations, written questions, evidence generated from the workplace, professional discussion, and witness testimonials. On completion - Once all feedback has been agreed, the Internal Quality Assurer will review your portfolio and in agreement with your assessor the certificate will be applied for. To download our PDF for this course then please click here.
PRINCE2® Practitioner : In-House Training Projects fail for a variety of reasons including poor planning, lack of defined quality criteria, poor understanding of the business drivers, inadequate control, and lack of senior management involvement in other words, lack of a structured best practice approach to project delivery. PRINCE2® (6th Edition is the current version) is a structured, process-based approach for project management providing a methodology which can be easily tailored and scaled to suit all types of projects. It is the de facto standard for project management in the UK Government and is also used extensively in more than 150 countries worldwide with in excess of 20,000 organizations already benefitting from its powerful approach. It can be used easily in combination with PMI®'s PMBOK® Guide to provide a robust project methodology, or to augment an existing PMBOK®-based methodology with additional rigor around areas such as Quality, Organization, and Benefits Realization. The goals of this course are to take participants to the next level of understanding and application of the PRINCE2® methodology and to prepare them to sit the Practitioner exam. Using APMG provided sample exam papers and additional project case studies, participants will learn how to apply what they learned during the Foundation course and how to approach the OTE Practitioner exam, which is aimed at testing their ability to apply PRINCE2® in an actual project environment simulated via a case study provided as part of the exam. What you will Learn You'll learn how to: Tailor and apply the principles, themes, process structure, techniques, and management products of PRINCE2® within a work environment, via carefully selected case studies Define the PRINCE2® 6th Edition method at the Practitioner level Prepare for and take the Practitioner exam Getting Started Introductions Course structure Course goals and objectives Tailoring PRINCE2® Tailoring PRINCE2® Adopting PRINCE2® Tailoring PRINCE2® to suit different projects Adopting PRINCE2® in an organizational environment Controlled Start Recap management products Study business case and risk Study activities and responsibilities in: Starting up a project Initiating a project Controlled Progress Study management products and risk Study activities and responsibilities in: Getting work done Monitoring and reporting Issues and escalation Controlled Close Study Activities and Responsibilities in Closing a Project Activities and roles Roles and Responsibilities Principles Exercise Product-basedPlanning Producing a product breakdown structure (PBS) Producing a product flow diagram (PFD) Linking product breakdown structures and product flow diagrams to product descriptions